rpms
/
libvirt
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

fix one crash in the the error handling for CVE-2011-1146

remotes/origin/f14
Daniel Veillard 2011-03-16 17:00:53 +08:00
parent ad7d10defd
commit a97e8a832b
2 changed files with 5 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
libvirt-0.8.3-read-only-checks.patch
View File

@ -29,7 +29,7 @@ Rebased to 0.8.2, mostly changed the call of the error routines
return (NULL);
}
+ if (conn->flags & VIR_CONNECT_RO) {
+ virLibDomainError(NULL, VIR_ERR_OPERATION_DENIED, __FUNCTION__);
+ virLibConnError(NULL, VIR_ERR_OPERATION_DENIED, __FUNCTION__);
+ goto error;
+ }

5
libvirt.spec
View File

@ -185,7 +185,7 @@
Summary: Library providing a simple API virtualization
Name: libvirt
Version: 0.8.3
Release: 5%{?dist}%{?extra_release}
Release: 6%{?dist}%{?extra_release}
License: LGPLv2+
Group: Development/Libraries
Source: http://libvirt.org/sources/libvirt-%{version}.tar.gz
@ -921,6 +921,9 @@ fi
%endif
%changelog
* Wed Mar 16 2011 Daniel Veillard <veillard@redhat.com> 0.8.3-6
- fix one crash in the the error handling for previous patch
* Tue Mar 15 2011 Daniel Veillard <veillard@redhat.com> 0.8.3-5
- fix a lack of API check on read-only connections 683655
- CVE-2011-1146